gpac: CVE-2018-20760 CVE-2018-20761 CVE-2018-20762 CVE-2018-20763

To: debian-multimedia@lists.debian.org
Subject: gpac: CVE-2018-20760 CVE-2018-20761 CVE-2018-20762 CVE-2018-20763
From: Moritz Mühlenhoff <jmm@inutil.org>
Date: Tue, 12 Mar 2019 22:45:31 +0100
Message-id: <[🔎] 20190312214531.GA19246@pisco.westfalen.local>
In-reply-to: <154982449283.5258.6021517030474298604.reportbug@hullmann.westfalen.local>
References: <154982449283.5258.6021517030474298604.reportbug@hullmann.westfalen.local>

On Sun, Feb 10, 2019 at 07:48:12PM +0100, Moritz Muehlenhoff wrote:
> Source: gpac
> Severity: grave
> Tags: security

There's a 0.7.1 in NEW, but that won't be in time for buster, could you
please upload a targeted fix for the open issues for 0.5?

https://security-tracker.debian.org/tracker/source-package/gpac has
links to all the fixes.

(I've prepared a stable-proposed-update for gpac, but getting it fixed
first in sid is a requirement for spu).

Cheers,
        Moritz

Reply to:

Prev by Date: Bug#923494: Please Recommend and dlopen libsdl2 rather than depending on it
Next by Date: Bug#923494: Please Recommend and dlopen libsdl2 rather than depending on it
Previous by thread: Processed: Bug #923494 in ffmpeg marked as pending
Next by thread: Bug#906144: libmypaint-common: drop Conflicts: mypaint-data
Index(es):
- Date
- Thread